$ rpki-client -vvf rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft File: kzrI56xL07WCmJ_Mty_JJ9cWQks.mft (raw, json) Hash identifier: 4wxqyCY4sjhJ4+AToHSBA6i+zPmne8JoZWGiOPd8U7E= Subject key identifier: 05:AC:AB:98:FF:E2:42:55:E7:FB:1D:45:BD:B0:46:A6:2D:C7:F7:B3 Authority key identifier: 93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B Certificate issuer: /CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Certificate serial: 0800 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft Manifest number: 07FA Signing time: Wed 02 Apr 2025 20:54:15 +0000 Manifest this update: Wed 02 Apr 2025 20:54:15 +0000 Manifest next update: Wed 09 Apr 2025 20:54:15 +0000 Files and hashes: 1: kzrI56xL07WCmJ_Mty_JJ9cWQks.crl (hash: mHg4BeN79dBHZEQq/x/H5tN77Rp2y51rBoydCsWakn0=) 2: 26D0F9B82A6611ECB12FB439C4F9AE02.roa (hash: o8uKSFAZOoKiAV/aw+gEXp611EqrXFJMlAGF3VnwD9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 20:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2048 (0x800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C79E1 Validity Not Before: Apr 2 20:54:15 2025 GMT Not After : Apr 9 20:54:15 2025 GMT Subject: CN=67eda3f7-fec2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:46:38:00:82:69:b5:91:ea:c2:cc:4c:91:dd: ae:50:83:58:84:f8:c4:7c:2b:8b:03:19:fb:df:3c: b6:cd:7d:b7:ed:1b:fd:67:73:c4:99:c7:40:ef:9c: 71:d7:b9:2a:ca:51:8f:c1:14:f8:b4:1c:5b:a2:d4: f0:49:8b:a5:88:42:23:ec:a9:09:d9:46:45:49:7f: a8:fb:40:eb:7d:dc:e9:14:6f:c9:7b:03:e8:91:8c: 35:1c:c6:31:6f:04:c4:83:17:d9:a0:58:40:dc:ba: c5:36:77:94:6e:e3:ed:a2:c6:e3:47:03:78:bd:6d: de:2d:37:26:49:03:5c:49:e5:2d:8c:5e:4f:43:2c: b4:34:29:ec:30:72:ac:a4:36:57:9d:35:a9:17:66: 92:68:18:50:64:59:16:60:62:4c:12:2f:34:e5:eb: 7b:02:7e:4c:c8:a1:1c:fa:70:6f:0c:70:0e:3a:36: 2a:16:0c:6d:7a:8e:9b:ab:0f:89:60:a4:fe:7d:ca: 0e:f2:25:5d:8e:bd:56:74:d9:59:79:86:29:07:7b: a6:f1:04:60:fd:61:bd:36:55:94:32:a7:3f:7a:fe: 86:c0:64:28:4a:9c:65:44:d5:f4:a7:87:cd:60:2b: 77:8c:40:a7:54:0a:c9:d1:27:b9:3d:9b:db:6b:38: d3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:AC:AB:98:FF:E2:42:55:E7:FB:1D:45:BD:B0:46:A6:2D:C7:F7:B3 X509v3 Authority Key Identifier: keyid:93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:0b:c1:b7:e3:12:ab:94:ae:2c:f8:0d:27:82:d9:6d:6d:56: 61:2e:7e:91:11:b5:e6:82:40:80:f0:5b:eb:2f:5c:b9:17:1b: a1:5c:4b:6e:fe:30:f2:21:e4:7e:85:3c:8e:b4:31:5b:e6:04: 54:39:53:61:72:eb:a9:ab:8f:d7:59:98:5d:86:2f:a9:7e:3b: d3:45:46:4c:b0:ca:b6:9e:67:bf:a0:8f:ff:84:92:33:11:30: 19:74:91:c3:39:bc:95:89:f1:5f:af:91:e0:91:da:47:6e:58: 7b:1b:c8:24:fa:13:91:4a:ea:4e:6e:7c:3c:c0:05:d3:a2:84: ba:26:cf:04:08:08:43:2f:6e:54:b9:7d:2e:42:fa:ba:b0:8e: a0:e2:0f:13:2e:f0:59:ab:41:7f:a7:b5:ec:59:c8:a6:17:0e: ee:6a:3b:57:42:de:6c:45:79:75:be:38:7d:84:54:cb:a1:f7: 74:c4:79:af:aa:1d:a5:eb:f4:24:64:a4:6b:32:81:8e:28:a7: 53:c3:7f:71:56:12:6a:ba:8b:1a:6c:13:87:06:e0:21:81:bd: 06:2a:54:9f:56:a3:e5:34:0b:ee:63:26:55:3b:46:9c:7a:46: ce:5b:3f:a1:59:d3:a4:70:02:1c:c7:5b:e8:61:84:0d:fd:1e: 0a:3a:f7:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5RTExMTAvBgNVBAUTKDkzM0FDOEU3QUM0QkQzQjU4Mjk4OUZDQ0I3MkZDOTI3 RDcxNjQyNEIwHhcNMjUwNDAyMjA1NDE1WhcNMjUwNDA5MjA1NDE1WjAYMRYwFAYD VQQDEw02N2VkYTNmNy1mZWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0Y4AIJptZHqwsxMkd2uUINYhPjEfCuLAxn73zy2zX237Rv9Z3PEmcdA75xx 17kqylGPwRT4tBxbotTwSYuliEIj7KkJ2UZFSX+o+0DrfdzpFG/JewPokYw1HMYx bwTEgxfZoFhA3LrFNneUbuPtosbjRwN4vW3eLTcmSQNcSeUtjF5PQyy0NCnsMHKs pDZXnTWpF2aSaBhQZFkWYGJMEi805et7An5MyKEc+nBvDHAOOjYqFgxteo6bqw+J YKT+fcoO8iVdjr1WdNlZeYYpB3um8QRg/WG9NlWUMqc/ev6GwGQoSpxlRNX0p4fN YCt3jECnVArJ0Se5PZvbazjT2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWsq5j/ 4kJV5/sdRb2wRqYtx/ezMB8GA1UdIwQYMBaAFJM6yOesS9O1gpifzLcvySfXFkJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzlFMS82NTU2RjhEQUQ3 ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3V0NtSl9NdHlfSko5Y1dR a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6ckk1NnhMMDdXQ21KX010eV9KSjljV1Frcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzlFMS82NTU2RjhEQUQ3ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3 V0NtSl9NdHlfSko5Y1dRa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZC8G34xKrlK4s+A0ngtltbVZhLn6REbXmgkCA8FvrL1y5FxuhXEtu /jDyIeR+hTyOtDFb5gRUOVNhcuupq4/XWZhdhi+pfjvTRUZMsMq2nme/oI//hJIz ETAZdJHDObyVifFfr5HgkdpHblh7G8gk+hORSupObnw8wAXTooS6Js8ECAhDL25U uX0uQvq6sI6g4g8TLvBZq0F/p7XsWcimFw7uajtXQt5sRXl1vjh9hFTLofd0xHmv qh2l6/QkZKRrMoGOKKdTw39xVhJquosabBOHBuAhgb0GKlSfVqPlNAvuYyZVO0ac ekbOWz+hWdOkcAIcx1voYYQN/R4KOvcb -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:12 2025 by rpki-client